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© Identification system. 



® Data (PAN, CHN, EPD) peculiar to an IC card - 
(11) and encrypted peculiar data (!A) obtained by 
encrypting the peculiar data are previously stored in 
the IC card (11). The encrypted peculiar data (IA) is 
decrypted in an IC card terminal (12), to obtain 
decrypted data (D-PAN, D-CHN. D-EPD) and the 
decrypted data (D-PAN, D-CHN, D-EPD) and pecu- 
liar data (PAN, CHN, EPD) stored in the IC card (11) 
are compared on the side of the IC card (11) and 
also on the side of the IC card terminal (12), where- 
by the authenticity of both the IC card (1 1 ) and IC 
^card terminal (12) is confirmed. 
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Identification system 



The present invention relates to an identifica- 
tion system for identifying the identities between an 
IC card issued such as a cash card or credit card 
and an IC card terminal when the IC card is loaded 
in the IC card terminal installed in a shop or the £ 
like. 

Recently, there have been a variety of cards 
issued by credit card firms or the like, with which 
commercial commodities can be purchased. As 
such cards, plastic cards, embossing cards, cards u 
having magnetic stripes, etc. are used. Such cards 
can be easily forged for illegal use. To prevent this 
problem, there has recently been developed an 
information card or so-called IC card, in which an 
IC module with a personal identification number - n 
(PIN) or the like stored therein is embedded in a 
thin card so that the PIN cannot be readily read out 
from the outside. This IC card can be difficult to 
forge and has excellent security. Further, it can 
store large quantities of information. When the IC 20 
card is used for a commercial transaction, it is 
loaded in an IC card terminal installed at a bank, a 
shop, etc., and the PIN and other data are input for 
the identification of the card and cardholder before 
a predetermined processing is executed. 25 

However, in the IC card system utilizing the IC 
card and IC card terminal, the PIN data of the 
cardholder is input from a keyboard of the card 
terminal in the shop. Therefore, the PIN data input 
operation is liable to be watched surreptitiously by, 30 
for instance, staff members, or other customers in 
the shop. Also, it is possible that the input PIN data 
can be read out surreptitiously by providing some 
surreptitious use of the card terminal itself. There- 
fore, the IC card has potential security problems 35 
during actual transactions. The surreptitious ob- 
servation of the PIN data input operation can be 
avoided if care is taken by the person who inputs 
the secret data. However, if means for surrepti- 
tiously reading out data is provided in the card 40 
terminal itself, there is no effective countermeasure 
by the cardholder. Further, when the IC card is 
forged, there is no countermeasure at all within the 
card terminal. Therefore, when an IC card is loaded 
in an IC card terminal, it is necessary to confirm 45 
the validity of both the card and the IC card termi- 
nal before the PIN data input operation, i.e., in an 
initial state after loading of or electric communicat- 
ing with the IC card. 

The invention has been accomplished in view 50 
of the above conventional drawbacks, and has 
therefore an object of providing an identification 
system, which can avoid illegal card transactions 
due to forging of an IC card, tampering with an IC 
card terminal, or using a counterfeit terminal. 



The object and other features of the invention 
can be achieved by providing an identification sys- 
tem comprising: 

IC card means; 

IC card terminal means capable of electrically com- 
municating with the IC card means when the IC 
card means is loaded thereon; 

said IC card means including first memory means 
for storing at least data unique to said IC card 
means and encrypted unique data obtained by 
encrypting said unique data; 

said IC card terminal means including decrypting 
means for decrypting said encrypted unique data 
stored in said first memory means to derive de- 
crypted unique data; 

said IC card means further including first compar- 
ing means for comparing said unique data stored in 
said first memory means with said decrypted 
unique data sent from said IC card terminal means 
so as to judge whether said unique data is co- 
incident with said decrypted unique data; and 

said IC card terminal further including second com- 
paring means for comparing said unique data 
stored in said first memory means and sent from 
said IC card means with said decrypted unique 
data so as to judge whether said unique data is 
coincident with said decrypted unique data, there- 
by confirming identities of both said IC card means 
and said IC card terminal means. 

For a better understanding of the above object 
and the features of the present invention, reference 
is made to the following detailed description of the 
invention to be read in conjunction with the accom- 
panying drawings, in which: 

Fig. 1 is a perspective view showing an IC 
card and an IC card terminal used in the identifica- 
tion system according to an embodiment of the 
invention; 

Fig. 2 is a block diagram showing the cir- 
cuitry of the IC card shown in Fig. 1 ; 

Fig. 3 is a schematic block diagram showing 
the circuitry of the IC card terminal shown in Fig. 1; 
and 

Fig. 4 is a flow chart illustrating an operation 
of confirming the authenticity of the IC card and IC 
card terminal in the IC card system. 
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An embodiment of this invention will now be 
described with reference to the accompanying 
drawings. 



result of comparator 29 is a coincidence output. 
Input/output interface 30 is connected to data bus 
line 21 for connection to card terminal 12. 



IC CARD AND CARD TERMINAL 

Fig. 1 shows a perspective view of IC card 11 
and IC card terminal (external unit) 12 in an IC card 
system 100 according to the invention. The IC card 
terminal 12 has keyboard 13. display 14 and card 
inlet 15 for permitting electric connection of termi- 
nal 12 to connector section 11a of IC card 11. 
These terminal parts are provided on top of a 
terminal housing. Card inlet 15 is provided in a 
card inlet panel, which is provided with eject push- 
button 16 for taking out the IC card. 



CIRCUIT ARRANGEMENT OF IC CARD 

Fig. 2 shows the circuit arrangement of IC card 
11 illustrated in Fig. 1. A data bus line 21 is 
connected to system controller 22 and system pro- 
gram ROM 23. 

Data RAM 24 and data latch unit 25 are con- 
nected to data bus line 21, and also data memory 
28 are connected to data bus line 21 via parallel- 
connected write controller 26 and read controller 
27. System controller 22 supplies control com- 
mands to these circuit elements. 

Data memory 28 stores encrypted data unique 
to card 11, i.e., "IA" (issuer authenticator). This 
specific single data IA is produced by encrypting 
three sets of data, "PAN", "EPD" and "CHN", and 
is registered in both the card issuer and the IC 
card. Data memory 28 further stores "PAN" - 
(primary account number), "EPD" (expiration date 
of card) and "CHN" (cardholders name). In data 
memory 28, data "PIN" (personal identification 
number) is also stored, which is entered by the 
cardholder personally at the time of issuance of 
card 11. Data stored in data memory 28 is stored 
and read out under control of controlling com- 
mands derived from system controller 22 for con- 
trolling the write controller 26 and read controller 
27. Data read from data memory 28 through read 
controller 27 is written in data storing RAM 24. 
Data supplied from card terminal 12 is latched in 
data latch unit 25. Data latch unit 25 and data RAM 
24 are connected to comparator 29. Comparator 29 
supplies comparison results to system controller 
22. System controller 22 supplies either an "OK" 
message or a "NG (no good)" message to data 
bus line 21 depending on whether the comparison 
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CIRCUIT ARRANGEMENT OF CARD TERMINAL 

Fig. 3 shows the circuit arrangement of IC card 
terminal 12. 

70 In this figure, data bus line 31 is employed to 

connect system program ROM 32, system control- 
ler 33, input controller 34 for controlling keyboard 
13, display controller 35 for controlling display unit 
14 and RSA decryptor 36. RSA decryptor 36 de- 

75 crypts data on the basis of an "RSA" algorithm. 
More specifically, RSA 36 decrypts the encrypted 
data "IA" read out and supplied form data memory 
28 of IC card 11 according to a decrypting key 
code (PRK) stored in RSA key code memory 37 

20 and supplies the decrypted data to decrypted data 
hold unit 38. Selector 39 is connected to decrypted 
data hold unit 38 via data bus line 31 so that a 
plurality of decrypted data can be selectively ex- 
tracted. 

25 In the code system based on the above-de- 

scribed "RSA" algorithm, data of interest is encryp- 
ted according to a public key code (PUK) and 
decrypted according to a private key code (PRK). 
The PUK and PRK are key codes selected on the 

30 basis of the "RSA" algorithm such that the key 
code selection is effected in a one-to-one cor- 
responding relationship by a predetermined one- 
way function, in the code system based on the 
"RSA" algorithm, the data encrypted by the PUK - 

35 (i.e., "IA" in this embodiment) is extremely difficult 
to be decrypted by the same PUK, but can be 
decrypted only with the PRK in one-to-one cor- 
responding relationship by the one-way function. 
The code system based on this "RSA" algorithm is 

40 described in detail in "CRYPTOGRAPHY" by Carl. 
H. Meyer and Stephen M. Matyas issued in 1982 
by John Wiley & Sons, Inc. 

Data latch unit 40 is connected to data bus line 
31. The three sets of data "PAN", "CHN" and 

45 "EPD" are latched in data latch unit 40, which are 
read out and supplied from data memory 28 in IC 
card 11. Data latch unit 40 and decrypted data hold 
unit 38 are connected to comparator/detector 41. 
The output from comparator/detector 41 is supplied 

so through control line 41a to system controller 33. 
Input/out interface 42 is connected to data bus line 
31 for connection to IC card 11. 

System program ROM 32, RSA decryptor 36, 
RSA key memory 37, decrypted hold unit 38, se- 

55 lector 39, data latch unit , 40 and 
comparator/detector 41 are connected to system 
controller 33 through control lines 33a to 33g, and 
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their operations are controlled by controlling sig- 
nals supplied through these control lines 33a to 
33g. 



IDENTIFICATION 

A description will now be made of identification 
operation of the system 100 for confirming iden- 
tities between the IC card 1 1 and the card terminal w 
12 with reference to the flowchart shown in Fig. 4. 

As seen from Fig. 4, a flowchart of the card 
operation is shown in contrast with a flowchart of 
operation in IC card terminal 12. When the IC 
cardholder loads IC card 11 in card terminal 12 75 
installed in a shop, for instance, through card inlet 
15, input/output interface 30 of IC card 11 and 
input/output interface 42 of terminal 12 are inter- 
connected (see Figs. 1 , 2 and 3). Then, the system 
proceeds in step S1, in which encrypted data "IA" 20 
is read out from data memory 28 in IC card 1 1 and 
transferred to card terminal 12 via interfaces 30 
and 42. In subsequent step S2 f the encrypted data 
"IA" transferred to terminal 12 is subjected to de- 
cryption in RSA decryptor 36 based upon the de- 25 
crypting key code "PRK" stored in RSA key code 
memory 37. Data "D-PAN", "D-CHN" and "D- 
EPD" decrypted by RSA decryptor 36 are trans- 
ferred to and stored in decrypted data hold unit 38. 
In step S3, only data "D-PAN" (decrypted personal 30 
account number) among the three decrypted data 
is extracted by selector 39 to be transferred to IC 
card 11. In IC card 11, data "D-PAN" transferred 
from card terminal 12 is latched in data latch unit 
25, and data "PAN" is read out from data memory 35 
28 through read controller 27 and stored in data 
RAM 24. In subsequent step S4, comparator 29 
compares decrypted data "D-PAN" latched in data 
latch section 25 with the data "PAN" derived from 
data ROM 24. Then, if comparator 29 determines 40 
in step S4 that the data "D-PAN" decrypted in card 
terminal 12 and data "PAN" previously stored in IC 
card 11 are coincident with each other, it is con- 
firmed that IC card terminal 12 to which IC card 11 
is being connected is authentic. Thereafter the sys- 45 
tern proceeds to step S5, in which IC card 11 
reads out the three sets of data "PAN", "CHN" and 
"EPD" from data memory 28 and transfers them to 
card terminal 12. These data "PAN", "CHN" and 
"EPD" transferred from IC card 11 are latched in so 
data latch unit 40 of card terminal 12. In subse- 
quent step S6, comparator/detector 41 compares 
the three sets of decrypted data "D-PAN", "D- 
CHN* and "D-EPD" stored in decrypted data hold 
unit 38 with the other data "PAN", "CHN" and 55 
"EPD" latched in data latch unit 40. If 
comparator/detector 41 determines in step S6 that 
the data "D-PAN", "D-CHN" and "D-EPD" decryp- 



ted in the card terminal 12 are coincident with data 
"PAN", "CHN" and "EPD" previously stored in IC 
card 11, it is determined that IC card 11 being 
loaded to terminal 12 is authentic. Then the system 
advances to step S7, in which "OK" signal is 
transmitted to IC card 11 from card terminal 12, 
and also an "OK message" is displayed to display 
unit 14 of terminal 12, thereby displaying the con- 
sent for possibility of transaction with IC card 1 1 . It 
is thus confirming that the present IC card 11 is an 
authentic IC card officially issued by a credit firm, 
and it is also confirmed that the IC card terminal 
12, to which this IC card 11 is being loaded, is also 
authentic. After confirmation of the authenticity be- 
tween IC card 11 and IC card terminal 12 accord- 
ing to the invention, the cardholder is identified by 
a normal "PIN" check before a transaction with the 
IC card can be executed. 

If in step S4, decryption data "D-PAN" decryp- 
ted in the card terminal 12 and data "PAN" pre- 
viously stored in IC card 1 1 are not coincident with 
each other, IC card terminal 12, to which the 
present IC card 1 1 is being loaded, is highly likely 
to be unauthentic. Then the system goes to step 
S8, where card data transfer operation with card 
terminal 12 is immediately interrupted. Conse- 
quently, if IC card terminal 12 is unauthentic, or 
altered, this can be recognized before the actual 
transaction starts with the IC card, thus preventing 
possible problems. 

Further, if in step S6, three sets of data "D- 
PAN", "D-CHN" and "D-EPD" decrypted in the 
card terminal 12 are not coincident with three sets 
of data "PAN", "CHN" and "EPD" previously 
stored in IC card 1 1 , then it is highly likely that the 
IC card 1 1 being loaded to terminal 12 is unauthen- 
tic, so that data exchange with IC card 11 is 
inhibited in step S9. Thus, if the IC card 11 con- 
nected to terminal 12 is unauthentic, e.g., a forged 
one. such a fact can be recognized before the 
actual transaction with IC card commences, with 
the result that possible transaction trouble can be 
avoided. 

It should be understood from the foregoing 
operations that the encrypted data "IA" previously 
stored in data memory 28 is utilized to judge the 
identity of the card terminal in the IC card, whereas 
three sets of data "PAN", "EPD" and "CHN" are 
used to judge the identification of the IC card in the 
card terminal. 

Although the foregoing has been a description 
and illustration of specific embodiments of the in- 
vention, various modifications and changes thereto 
can be made by persons skilled in the art without 
departing from the scope of the invention. 
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In the above embodiment the "RSA" algorithm 
has been adopted for the encrypting system, but 
for example, it is also possible to introduce a "Data 
Encryption System" (DES). 

Further, the unique data "PAN", "CHN" and 
"EPD" are not limited, but any other specific data 
may be employed. 

While the invention has been described in the 
foregoing, both the data (PAN, CHN, EPD) unique 
to the IC card and the encrypted unique data (IA) 
obtained by encrypting the above data are pre- 
viously stored in the IC card, the encrypted unique 
data is decrypted in the IC card terminal, and the 
decrypted data and unique data previously stored 
in the IC card are compared in both the IC card 
and the IC card terminal to confirm the authenticity 
or identities of both the IC card and the IC card 
terminal. Thus, it is possible to prevent illegal card 
transactions with, for instance, a forged IC card or 
a counterfeit or tempered IC card terminal. 

Moreover, since the IC card does not require 
any encrypting circuit but merely stores the unique 
data and the data obtained by encrypting this 
unique data, it is possible to simplify the circuitry 
of the IC card and manufacture a low-cost IC card. 



Claims 

1. An identification system (100) comprising: 
IC card means (11); 

IC card terminal means (12) capable of electrically 
communicating with the IC card means (11) when 
the IC card means (1 1 ) is loaded thereon; 

said IC card means (11) including first memory 
means (28) for storing at least data unique (PAN, 
EPD, CHN) to said IC card means and encrypted 
unique data (IA) obtained by encrypting said 
unique data (PAN, EPD, CHN); 

said IC card terminal means (12) including decryp- 
ting means (36) for decrypting said encrypted 
unique data (IA) stored in said first memory means 
(28) to derive decrypted unique data (D-PAN, D- 
CHN, D-EPD); 

said IC card means (11) further including first com- 
paring means (29) for comparing said decrypted 
unique data (D-PAN) sent from said IC card termi- 
nal means (12) with said unique data (PAN) stored 
in said first memory means (28) so as to judge 
whether said unique data (PAN) is coincident with 
said decrypted unique data (D-PAN); and 

said IC card terminal (12) further including second 
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comparing means (41) for comparing said decryp- 
ted unique data (D-PAN) with said unique data - 
(PAN) stored in said first memory means (28) and 
sent from said IC card means (11) so as to judge 
5 whether said unique data (PAN) is coincident with 
said decrypted unique data (D-PAN), thereby con- 
firming identities of both said IC card means (11) 
and said IC card terminal means (12). 

2. An identification system (100) as claimed in 
to claim 1, characterized in that, when the result of 

comparison by at least one of said first and second 
comparing means (29, 41) is non-coincident, sub- 
sequent communication between said IC card 
means (11) and said IC card terminal means (12) is 
75 interrupted. 

3. An identification system (100) as claimed in 
claim 2, characterized in that said IC card terminal 
means (12) further includes second memory means 
(37) for storing key information (PRK) for decryp- 

20 tion, said decrypting means (36) of said IC card 
terminal means (12) decrypting said encrypted 
unique data (IA) stored in said first memory means 
(28) on the basis of a "RSA" algorithm using said 
key information for decryption (PRK). 

25 4. An identification system (100) as claimed in 

claim 2, characterized in that said unique data and 
encrypted unique data (IA) stored in said first 
memory means (28) of said IC card means (11) 
each are constructed of a plurality of different data 

30 information (PAN, EPD, CHN); 

said IC card means (11) includes first selecting 
means (27) for selecting at least one of said plural- 
ity of unique data (PAN, EPD, CHN); 

35 

said IC card terminal means (12) includes second 
selecting means (39) for selecting at least one of a 
plurality of decrypted data (D-PAN, D-EPD, D- 
CHN) decrypted by said decrypting means (36); 
40 and 

said first comparing means (29) compares said 
unique data (PAN, EPD, CHN) with said decrypted 
data (D-PAN, D-EPD, D-CHN) selected by said first 
45 and second selecting means (27. 39) so as to 
judge coincidence between said data. 

5. An identification system (100) as claimed in 
claim 4, characterized in that, when the result of 
comparison by said first comparing means (29) in 

so said IC card means (11) is non-coincident, said 
second comparing means (41) of said IC card 
terminal means (12) compares all of the unique 
data stored in said first memory means (28) with all 
of the decrypted data decrypted by said decrypting 

55 means (36). 

6. An identification system (100) as claimed in 
claim 5, characterized in that said unique data 
include data "PAN", "CHN" and "EPD", and said 
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decrypted data is obtained by encrypting said data 
"PAN", "CHN" and EPD" on the basis of the RSA 
aJgorithm. 
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© Data (PAN, CHN, EPD) peculiar to an IC card 
(11) and encrypted peculiar data (IA) obtained by 
encrypting the peculiar data are previously stored in 
the IC card (11). The encrypted peculiar data (IA) is 
decrypted in an IC card terminal (12), to obtain 
decrypted data (D-PAN, D-CHN, D-EPD) and the 
decrypted data (D-PAN, D-CHN, D-EPD) and pecu- 
liar data (PAN, CHN, EPD) stored in the IC card (11) 
are compared on the side of the IC card (11) and 
also on the side of the IC card terminal (12), where- 
by the authenticity of both the IC card (11) and IC 
card terminal (12) is confirmed. 
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